[systemd-devel] Delaying (SSH) key generation until the urandom pool is initialized
Daniel P. Berrange
berrange at redhat.com
Wed Apr 30 04:14:13 PDT 2014
On Tue, Apr 29, 2014 at 08:43:38PM +0200, Florian Weimer wrote:
> The message at <https://mail.gnome.org/archives/ostree-list/2014-February/msg00010.html>
> contains two boot traces from virtual machines which show that the
> SSH key is generated before the kernel pool is sufficiently seeded.
I'm wondering if the VMs that ostree is creating are being given a
virtio-rng device ? If not that would probably be a good idea to
enable to allow them to get entropy. VMs are generally starved of
entropy even beyond the initial boot up stage, so a virtual RNG is
generally useful.
Regards,
Daniel
--
|: http://berrange.com -o- http://www.flickr.com/photos/dberrange/ :|
|: http://libvirt.org -o- http://virt-manager.org :|
|: http://autobuild.org -o- http://search.cpan.org/~danberr/ :|
|: http://entangle-photo.org -o- http://live.gnome.org/gtk-vnc :|
More information about the systemd-devel
mailing list